Manualshelf

Owner's Manual

ManualsBrandsDell ManualsSoftwareDell Chassis Management Controller Version 3.2
291292293294295296297298299300
Using the CMC Directory Service 297
Configuring Smart Card Two-Factor
Authentication
Traditional authentication schemes use user name and password to
authenticate users. Two-factor-authentication, on the other hand, provides a
higher-level of security by requiring users to have a password or PIN and
a physical card containing a private key or digital certificate. Kerberos,
a network authentication protocol, uses this two-factor authentication
mechanism allowing systems to prove their authenticity. Microsoft
Windows 2000, Windows XP, Windows Server 2003, Windows Vista,
and Windows Server 2008 use Kerberos as their preferred authentication
method. Starting with CMC version 2.10, CMC can use Kerberos to support
Smart Card login.
NOTE: Selecting a login method does not set policy attributes with respect to other
login interfaces, for example, SSH. You must set other policy attributes for other
login interfaces as well. If you want to disable all other login interfaces, navigate to
the Services page and disable all (or some) login interfaces.
System Requirements
The "System Requirements" on page 291 for Smart Card are the same as
Single Sign-On.
Configuring Settings
The "Prerequisites" on page 292 for Smart Card are the same as Single Sign-
On.